$ rpki-client -vvf rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa File: 7CEC1452E17E11ECAB421316C4F9AE02.roa (raw, json) Hash identifier: 2K4e3vOzHM2ANwsgFBh9dE0TtUd2Q1uW6NCTts6cJeA= Subject key identifier: F8:11:DE:50:A9:51:89:91:BA:67:F3:63:60:24:A2:81:C4:C5:BB:7B Certificate issuer: /CN=A91B2D29/serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Certificate serial: 0A03 Authority key identifier: B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 Authority info access: rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer Subject info access: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa Signing time: Fri 31 Oct 2025 16:03:00 +0000 ROA not before: Fri 31 Oct 2025 16:03:00 +0000 ROA not after: Sun 01 Mar 2026 00:00:00 +0000 asID: 58895 IP address blocks: 43.246.220.0/22 maxlen: 24 103.35.208.0/22 maxlen: 24 Validation: OK Signature path: rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Tue 11 Nov 2025 15:52:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 2563 (0xa03) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A91B2D29, serialNumber=B8E96C6A0D9548A2A040CBE7199745BA7DB1ED28 Validity Not Before: Oct 31 16:03:00 2025 GMT Not After : Mar 1 00:00:00 2026 GMT Subject: CN=6904ddb3-11be Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:f8:e8:31:c7:26:ee:89:b4:04:52:31:75:0a:93: 93:97:5c:1c:70:6e:e6:89:b8:35:e1:ed:ef:ac:ee: 10:06:ff:9c:07:94:db:96:f8:3e:18:9b:dd:0a:3c: 41:d9:b8:0a:81:4c:63:21:6e:5b:0d:04:c5:fa:59: 75:d6:80:c5:3c:fa:b7:d6:53:37:ab:a0:0b:62:30: 42:8e:4c:09:e9:79:31:98:28:d0:62:35:57:47:91: 47:dc:8e:14:b9:46:38:80:6c:24:47:6c:d7:05:43: 7b:97:11:3a:eb:7b:9b:22:fc:4d:20:37:2f:f4:cf: 7f:10:18:d4:33:a6:ed:ba:8c:da:7e:88:32:e5:0b: 3f:48:59:9a:8b:b4:23:71:49:15:6f:dd:32:66:ab: 99:5c:38:cc:5d:fa:8d:87:db:df:e5:64:0f:8c:7a: f1:ef:38:df:18:6c:bf:54:9e:5a:56:8f:c3:8c:b0: 29:51:6a:1c:35:c9:26:31:cc:38:98:85:c9:e2:b7: 99:03:02:e0:1d:04:37:ed:d3:65:ce:53:ce:f3:1f: bc:31:d6:42:03:9b:79:ad:bc:fa:06:07:e3:24:86: 4f:80:42:b5:cd:70:c7:59:15:aa:bc:3d:02:5b:03: c1:6e:7c:e4:4e:09:a7:77:4f:2f:8e:40:4c:5f:cc: f2:5d Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: F8:11:DE:50:A9:51:89:91:BA:67:F3:63:60:24:A2:81:C4:C5:BB:7B X509v3 Authority Key Identifier: keyid:B8:E9:6C:6A:0D:95:48:A2:A0:40:CB:E7:19:97:45:BA:7D:B1:ED:28 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/uOlsag2VSKKgQMvnGZdFun2x7Sg.crl Authority Information Access: CA Issuers - URI:rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uOlsag2VSKKgQMvnGZdFun2x7Sg.cer X509v3 Certificate Policies: critical Policy: ipAddr-asNumber CPS: https://www.apnic.net/RPKI/CPS.pdf Subject Information Access: Signed Object - URI:rsync://rpki.apnic.net/member_repository/A91B2D29/F71E7166552111E5ADB2092AC4F9AE02/7CEC1452E17E11ECAB421316C4F9AE02.roa RPKI Notify - URI:https://rrdp.apnic.net/notification.xml sbgp-ipAddrBlock: critical IPv4: 43.246.220.0/22 103.35.208.0/22 Signature Algorithm: sha256WithRSAEncryption 21:7d:e7:b0:ea:95:90:0a:2f:e9:8d:76:7e:5d:01:ee:3c:94: 1a:c7:b3:2d:78:aa:41:ff:22:fd:f1:df:23:1f:e4:79:7f:9e: b5:d5:d2:9e:00:26:4b:40:83:ac:f7:e9:8e:f0:65:91:a9:9c: 37:2b:ae:85:eb:10:3e:a6:1c:d1:83:8f:3b:97:5f:59:71:eb: 4a:8f:f6:9e:ef:cc:e7:06:ac:0c:0e:14:ac:fc:50:b0:26:7f: 30:d0:ca:c0:80:54:38:61:c7:2e:f8:5e:fa:62:de:d4:9c:8e: 9a:75:ca:bf:11:ae:f0:a1:87:22:a2:ec:64:92:99:2f:bd:85: 70:93:e1:8e:0c:ed:e2:78:f8:f0:5d:68:03:64:b8:47:af:b5: 47:fe:4a:51:38:e0:04:8d:54:b8:19:b5:21:3f:f5:4e:e8:ae: 1d:3b:3d:d9:8a:8d:7e:95:ce:20:d3:4d:c4:d3:e2:a7:f8:78: 30:24:cb:f7:1f:72:74:34:ae:7f:3d:8f:64:20:79:18:d0:e5: e6:31:b4:42:0a:ee:44:6b:b8:91:cb:d8:75:a1:dc:81:12:83: ed:53:80:0e:79:b5:c1:de:54:fa:96:98:8f:3c:55:6a:66:97: d4:cc:1b:b0:43:7c:28:e6:b3:fc:8e:d6:f9:88:5b:3d:1f:37: b4:75:83:e2 -----BEGIN CERTIFICATE----- MIIFdzCCBF+gAwIBAgICCgMwDQYJKoZIhvcNAQELBQAwRjERMA8GA1UEAxMIQTkx QjJEMjkxMTAvBgNVBAUTKEI4RTk2QzZBMEQ5NTQ4QTJBMDQwQ0JFNzE5OTc0NUJB N0RCMUVEMjgwHhcNMjUxMDMxMTYwMzAwWhcNMjYwMzAxMDAwMDAwWjAYMRYwFAYD VQQDEw02OTA0ZGRiMy0xMWJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA+OgxxybuibQEUjF1CpOTl1wccG7mibg14e3vrO4QBv+cB5Tblvg+GJvdCjxB 2bgKgUxjIW5bDQTF+ll11oDFPPq31lM3q6ALYjBCjkwJ6XkxmCjQYjVXR5FH3I4U uUY4gGwkR2zXBUN7lxE663ubIvxNIDcv9M9/EBjUM6btuozafogy5Qs/SFmai7Qj cUkVb90yZquZXDjMXfqNh9vf5WQPjHrx7zjfGGy/VJ5aVo/DjLApUWocNckmMcw4 mIXJ4reZAwLgHQQ37dNlzlPO8x+8MdZCA5t5rbz6BgfjJIZPgEK1zXDHWRWqvD0C WwPBbnzkTgmnd08vjkBMX8zyXQIDAQABo4ICmzCCApcwHQYDVR0OBBYEFPgR3lCp UYmRumfzY2AkooHExbt7MB8GA1UdIwQYMBaAFLjpbGoNlUiioEDL5xmXRbp9se0o MA4GA1UdDwEB/wQEAwIHgDCBgwYDVR0fBHwwejB4oHagdIZycnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9tZW1iZXJfcmVwb3NpdG9yeS9BOTFCMkQyOS9GNzFFNzE2NjU1 MjExMUU1QURCMjA5MkFDNEY5QUUwMi91T2xzYWcyVlNLS2dRTXZuR1pkRnVuMng3 U2cuY3JsMH4GCCsGAQUFBwEBBHIwcDBuBggrBgEFBQcwAoZicnN5bmM6Ly9ycGtp LmFwbmljLm5ldC9yZXBvc2l0b3J5L0I1MjdFRjU4MUQ2NjExRTJCQjQ2OEY3Qzcy RkQxRkYyL3VPbHNhZzJWU0tLZ1FNdm5HWmRGdW4yeDdTZy5jZXIwSgYDVR0gAQH/ BEAwPjA8BggrBgEFBQcOAjAwMC4GCCsGAQUFBwIBFiJodHRwczovL3d3dy5hcG5p Yy5uZXQvUlBLSS9DUFMucGRmMIHLBggrBgEFBQcBCwSBvjCBuzCBgwYIKwYBBQUH MAuGd3JzeW5jOi8vcnBraS5hcG5pYy5uZXQvbWVtYmVyX3JlcG9zaXRvcnkvQTkx QjJEMjkvRjcxRTcxNjY1NTIxMTFFNUFEQjIwOTJBQzRGOUFFMDIvN0NFQzE0NTJF MTdFMTFFQ0FCNDIxMzE2QzRGOUFFMDIucm9hMDMGCCsGAQUFBzANhidodHRwczov L3JyZHAuYXBuaWMubmV0L25vdGlmaWNhdGlvbi54bWwwJQYIKwYBBQUHAQcBAf8E FjAUMBIEAgABMAwDBAIr9twDBAJnI9AwDQYJKoZIhvcNAQELBQADggEBACF957Dq lZAKL+mNdn5dAe48lBrHsy14qkH/Iv3x3yMf5Hl/nrXV0p4AJktAg6z36Y7wZZGp nDcrroXrED6mHNGDjzuXX1lx60qP9p7vzOcGrAwOFKz8ULAmfzDQysCAVDhhxy74 Xvpi3tScjpp1yr8RrvChhyKi7GSSmS+9hXCT4Y4M7eJ4+PBdaANkuEevtUf+SlE4 4ASNVLgZtSE/9U7orh07PdmKjX6VziDTTcTT4qf4eDAky/cfcnQ0rn89j2QgeRjQ 5eYxtEIK7kRruJHL2HWh3IESg+1TgA55tcHeVPqWmI88VWpml9TMG7BDfCjms/yO 1vmIWz0fN7R1g+I= -----END CERTIFICATE-----Generated at Wed Nov 5 10:26:19 2025 by rpki-client